Top

Tag: cyber-espionage


Data loss, Threats & Malware

Russian hackers breached Microsoft, HPE corporate maliboxes

January 25, 2024

Via: Help Net Security

Cozy Bear (aka Midnight Blizzard, aka APT29) has been busy hacking and spying on big tech companies: both Microsoft and Hewlett Packard Enterprise (HPE) have recently disclosed successful attack campaigns by the Russia-affiliated APT group. The Microsoft breach Last Friday, […]


Cyber warfare, Cyber-crime

Chinese snoops stole 60K State Department emails in that Microsoft email heist

September 28, 2023

Via: The Register

Chinese snoops stole about 60,000 State Department emails when they broke into Microsoft-hosted Outlook and Exchange Online accounts belonging to US government officials over the summer. “No classified systems were hacked,” said State Department spokesperson Matthew Miller during a press […]


Cyber warfare, Cyber-crime

China-Linked Flax Typhoon Cyber Espionage Targets Taiwan’s Key Sectors

August 25, 2023

Via: The Hacker News

A nation-state activity group originating from China has been linked to cyber attacks on dozens of organizations in Taiwan as part of a suspected espionage campaign. The Microsoft Threat Intelligence team is tracking the activity under the name Flax Typhoon, […]


Cyber-crime, Malware

Russian Hackers Use Zulip Chat App for Covert C&C in Diplomatic Phishing Attacks

August 17, 2023

Via: The Hacker News

An ongoing campaign targeting ministries of foreign affairs of NATO-aligned countries points to the involvement of Russian threat actors. The phishing attacks feature PDF documents with diplomatic lures, some of which are disguised as coming from Germany, to deliver a […]


Cyber-crime, Malware

Charming Kitten Targets Iranian Dissidents with Advanced Cyber Attacks

August 14, 2023

Via: The Hacker News

Germany’s Federal Office for the Protection of the Constitution (BfV) has warned of cyber attacks targeting Iranian persons and organizations in the country since the end of 2022. “The cyber attacks were mainly directed against dissident organizations and individuals – […]


Cyber-crime, Phishing

BlueBravo Deploys GraphicalProton Backdoor Against European Diplomatic Entities

July 28, 2023

Via: The Hacker News

The Russian nation-state actor known as BlueBravo has been observed targeting diplomatic entities throughout Eastern Europe with the goal of delivering a new backdoor called GraphicalProton, exemplifying the continuous evolution of the threat. The phishing campaign is characterized by the […]


Threats & Malware, Virus & Malware

U.S. Government Blacklists Cytrox and Intellexa Spyware Vendors for Cyber Espionage

July 19, 2023

Via: The Hacker News

The U.S. government on Tuesday added two foreign commercial spyware vendors, Cytrox and Intellexa, to an economic blocklist for weaponizing cyber exploits to gain unauthorized access to devices and “threatening the privacy and security of individuals and organizations worldwide.” This […]


Email security, Security

U.S. Government Agencies’ Emails Compromised in China-Backed Cyber Attack

July 13, 2023

Via: The Hacker News

An unnamed Federal Civilian Executive Branch (FCEB) agency in the U.S. detected anomalous email activity in mid-June 2023, leading to Microsoft’s discovery of a new China-linked espionage campaign targeting two dozen organizations. The details come from a joint cybersecurity advisory […]


Cyber-crime, Malware

Microsoft Thwarts Chinese Cyber Attack Targeting Western European Governments

July 12, 2023

Via: The Hacker News

Microsoft on Tuesday revealed that it repelled a cyber attack staged by a Chinese nation-state actor targeting two dozen organizations, some of which include government agencies, in a cyber espionage campaign designed to acquire confidential data. The attacks, which commenced […]


Cyber-crime, Malware

Camaro Dragon Hackers Strike with USB-Driven Self-Propagating Malware

June 22, 2023

Via: The Hacker News

The Chinese cyber espionage actor known as Camaro Dragon has been observed leveraging a new strain of self-propagating malware that spreads through compromised USB drives. “While their primary focus has traditionally been Southeast Asian countries, this latest discovery reveals their […]


Cyber warfare, Cyber-crime

New Report Reveals Shuckworm’s Long-Running Intrusions on Ukrainian Organizations

June 15, 2023

Via: The Hacker News

The Russian threat actor known as Shuckworm has continued its cyber assault spree against Ukrainian entities in a bid to steal sensitive information from compromised environments. Targets of the recent intrusions, which began in February/March 2023, include security services, military, […]


Cyber warfare, Cyber-crime, Phishing

Trojan-Rigged Phishing Attacks Pepper China-Taiwan Conflict

May 18, 2023

Via: Dark Reading

Cyber espionage attacks against organizations in Taiwan have surged against the backdrop of recent political tensions, new research shows. Trellix this week cited a fourfold rise in malicious phishing emails targeting Taiwanese companies between April 7 and 10 of this […]


Threats & Malware, Virus & Malware

U.S. Government Neutralizes Russia’s Most Sophisticated Snake Cyber Espionage Tool

May 10, 2023

Via: The Hacker News

The U.S. government on Tuesday announced the court-authorized disruption of a global network compromised by an advanced malware strain known as Snake wielded by Russia’s Federal Security Service (FSB). Snake, dubbed the “most sophisticated cyber espionage tool,” is the handiwork […]


Cyber-crime, Malware

North Korean APT Uses Malicious Microsoft OneDrive Links to Spread New Malware

May 8, 2023

Via: Dark Reading

North Korean cyber espionage group Kimsuky has expanded its attack arsenal with a new spear-phishing campaign that uses Microsoft OneDrive links in documents armed with malicious macros that drop novel reconnaissance malware. Researchers at SentinelLabs observed a new campaign from […]


Network security, Security

Meta Uncovers Massive Social Media Cyber Espionage Operations Across South Asia

May 4, 2023

Via: The Hacker News

Three different threat actors leveraged hundreds of elaborate fictitious personas on Facebook and Instagram to target individuals located in South Asia as part of disparate attacks. “Each of these APTs relied heavily on social engineering to trick people into clicking […]


Cyber-crime, Malware

Unknown actors deploy malware to steal data in occupied regions of Ukraine

March 22, 2023

Via: The Register

A cyber espionage campaign targeting organizations in Russian-occupied regions of Ukraine is using novel malware to steal data, according to Russia-based infosec software vendor Kaspersky. In a report published Tuesday, Kaspersky researchers detailed the infections, which use a PowerShell-based backdoor […]


Threats & Malware, Vulnerabilities

From Ransomware to Cyber Espionage: 55 Zero-Day Vulnerabilities Weaponized in 2022

March 21, 2023

Via: The Hacker News

As many as 55 zero-day vulnerabilities were exploited in the wild in 2022, with most of the flaws discovered in software from Microsoft, Google, and Apple. While this figure represents a decrease from the year before, when a staggering 81 […]


Cyber-crime, Malware

Data loss prevention company hacked by Tick cyberespionage group

March 15, 2023

Via: Help Net Security

ESET researchers have uncovered a compromise of an East Asian data loss prevention (DLP) company. The attackers utilized at least three malware families during the intrusion, compromising both the internal update servers and third-party tools utilized by the company. This […]


Cyber-crime, Malware

North Korean Cyber Espionage Group Deploys WhiskerSpy Backdoor in Latest Attacks

February 20, 2023

Via: The Hacker News

The cyber espionage threat actor tracked as Earth Kitsune has been observed deploying a new backdoor called WhiskerSpy as part of a social engineering campaign. Earth Kitsune, active since at least 2019, is known to primarily target individuals interested in […]


Cyber warfare, Cyber-crime

Chinese Hackers Targeting South American Diplomatic Entities with ShadowPad

February 14, 2023

Via: The Hacker News

Microsoft on Monday attributed a China-based cyber espionage actor to a set of attacks targeting diplomatic entities in South America. The tech giant’s Security Intelligence team is tracking the cluster under the emerging moniker DEV-0147, describing the activity as an […]